Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-52814 | 8.1 (v3.1) | WordPress BRW plugin <= 1.8.8 - Local File Inclusion V… |
ovatheme |
BRW |
2025-06-27T11:52:18.876Z | 2026-04-28T16:13:19.558Z |
| cve-2025-52807 | 8.1 (v3.1) | WordPress Kossy - Minimalist eCommerce WordPress Theme… |
ApusWP |
Kossy - Minimalist eCommerce WordPress Theme |
2025-07-04T11:17:54.384Z | 2026-04-28T16:13:19.535Z |
| cve-2025-52806 | 7.5 (v3.1) | WordPress JobSearch Plugin < 3.0.8 - Local File Inclus… |
eyecix |
JobSearch |
2025-08-14T10:33:57.075Z | 2026-04-28T16:13:19.463Z |
| cve-2025-52809 | 8.1 (v3.1) | WordPress National Weather Service Alerts plugin <= 1.… |
John Russell |
National Weather Service Alerts |
2025-06-27T11:52:21.393Z | 2026-04-28T16:13:19.417Z |
| cve-2025-52808 | 8.1 (v3.1) | WordPress RealtyElite theme <= 1.0.0 - Local File Incl… |
real-web |
RealtyElite |
2025-06-27T11:52:22.035Z | 2026-04-28T16:13:19.412Z |
| cve-2025-52803 | 7.5 (v3.1) | WordPress Sala theme <= 1.1.3 - Broken Access Control … |
uxper |
Sala |
2025-07-16T11:27:54.296Z | 2026-04-28T16:13:19.397Z |
| cve-2025-52796 | 7.1 (v3.1) | WordPress WP-Recall <= 16.26.14 - Cross Site Scripting… |
tggfref |
WP-Recall |
2025-07-04T11:17:55.974Z | 2026-04-28T16:13:19.383Z |
| cve-2025-52811 | 8.1 (v3.1) | WordPress Davenport - Versatile Blog and Magazine Word… |
Creanncy |
Davenport - Versatile Blog and Magazine WordPress Theme |
2025-06-27T11:52:20.208Z | 2026-04-28T16:13:19.365Z |
| cve-2025-52810 | 8.1 (v3.1) | WordPress Katerio - Magazine theme <= 1.5.1 - Local Fi… |
TMRW-studio |
Katerio - Magazine |
2025-06-27T11:52:20.816Z | 2026-04-28T16:13:19.363Z |
| cve-2025-52813 | 8.1 (v3.1) | WordPress MobiLoud <= 4.6.5 - Broken Access Control Vu… |
pietro |
MobiLoud |
2025-07-04T11:17:53.778Z | 2026-04-28T16:13:19.359Z |
| cve-2025-52805 | 7.5 (v3.1) | WordPress Leyka plugin <= 3.32.1 - Local File Inclusio… |
VaultDweller |
Leyka |
2025-07-04T11:17:54.954Z | 2026-04-28T16:13:19.286Z |
| cve-2025-52804 | 7.5 (v3.1) | WordPress Nuss theme <= 1.3.7.1 - Broken Access Contro… |
uxper |
Nuss |
2025-07-16T11:27:53.783Z | 2026-04-28T16:13:19.221Z |
| cve-2025-52799 | 7.1 (v3.1) | WordPress LMS theme <= 9.2 - Reflected Cross Site Scri… |
designthemes |
LMS |
2025-06-27T11:52:22.671Z | 2026-04-28T16:13:19.163Z |
| cve-2025-52790 | 7.1 (v3.1) | WordPress WP-DownloadCounter plugin <= 1.01 - Cross Si… |
r-win |
WP-DownloadCounter |
2025-06-20T15:03:42.584Z | 2026-04-28T16:13:19.155Z |
| cve-2025-52795 | 7.1 (v3.1) | WordPress WP Front User Submit / Front Editor plugin <… |
aharonyan |
WP Front User Submit / Front Editor |
2025-06-20T15:03:40.191Z | 2026-04-28T16:13:19.135Z |
| cve-2025-52791 | 7.1 (v3.1) | WordPress Knowledge Base – Knowledge Base Maker plugin… |
devfelixmoira |
Knowledge Base – Knowledge Base Maker |
2025-06-20T15:03:42.082Z | 2026-04-28T16:13:19.107Z |
| cve-2025-52787 | 7.1 (v3.1) | WordPress Tennis Court Bookings plugin <= 1.2.7 - Cros… |
EZiHosting |
Tennis Court Bookings |
2025-07-16T11:27:54.842Z | 2026-04-28T16:13:19.100Z |
| cve-2025-52788 | 7.1 (v3.1) | WordPress CaptionPix <= 1.8 - Cross Site Scripting (XS… |
Russell Jamieson |
CaptionPix |
2025-08-14T10:33:58.848Z | 2026-04-28T16:13:19.091Z |
| cve-2025-52786 | 7.1 (v3.1) | WordPress Media Folder plugin <= 1.0.0 - Cross Site Sc… |
Kingdom Creation |
Media Folder |
2025-07-16T11:27:55.315Z | 2026-04-28T16:13:19.075Z |
| cve-2025-52784 | 7.1 (v3.1) | WordPress Bluff Post plugin <= 1.1.1 - Cross Site Requ… |
hideoguchi |
Bluff Post |
2025-06-20T15:03:43.552Z | 2026-04-28T16:13:19.075Z |
| cve-2025-52785 | 7.1 (v3.1) | WordPress SMM API plugin <= 6.0.31 - Broken Access Con… |
softnwords |
SMM API |
2025-08-14T10:33:59.436Z | 2026-04-28T16:13:19.033Z |
| cve-2025-52800 | 7.3 (v3.1) | WordPress The E-Commerce ERP <= 2.1.1.3 - Broken Acces… |
Unity Business Technology Pty Ltd |
The E-Commerce ERP |
2025-08-14T10:33:58.298Z | 2026-04-28T16:13:19.018Z |
| cve-2025-52789 | 7.1 (v3.1) | WordPress Lewe ChordPress plugin <= 4.0.1 - Cross Site… |
George Lewe |
Lewe ChordPress |
2025-06-20T15:03:43.083Z | 2026-04-28T16:13:19.008Z |
| cve-2025-52801 | 7.3 (v3.1) | WordPress TheBooking Plugin <= 1.4.4 - Broken Access C… |
VonStroheim |
TheBooking |
2025-08-14T10:33:57.635Z | 2026-04-28T16:13:19.005Z |
| cve-2025-52797 | 8.2 (v3.1) | WordPress StoryMap Plugin <= 2.1 - Cross Site Request … |
josepsitjar |
StoryMap |
2025-08-14T18:22:04.151Z | 2026-04-28T16:13:18.999Z |
| cve-2025-52792 | 7.1 (v3.1) | WordPress WP User Stylesheet Switcher plugin <= v2.2.0… |
vgstef |
WP User Stylesheet Switcher |
2025-06-20T15:03:41.587Z | 2026-04-28T16:13:18.994Z |
| cve-2025-52802 | 7.5 (v3.1) | WordPress Import YouTube videos as WP Posts plugin <= … |
enguerranws |
Import YouTube videos as WP Posts |
2025-06-20T15:03:39.682Z | 2026-04-28T16:13:18.988Z |
| cve-2025-52798 | 7.1 (v3.1) | WordPress JobSearch plugin < 3.0.6 - Reflected Cross S… |
eyecix |
JobSearch |
2025-07-04T11:17:55.451Z | 2026-04-28T16:13:18.984Z |
| cve-2025-52794 | 7.1 (v3.1) | WordPress Creative Contact Form plugin <= 1.0.0 - Cros… |
Creative-Solutions |
Creative Contact Form |
2025-06-20T15:03:40.653Z | 2026-04-28T16:13:18.980Z |
| cve-2025-52793 | 7.1 (v3.1) | WordPress Esselink.nu Settings plugin <= 4.5 - Cross S… |
Esselink.nu |
Esselink.nu Settings |
2025-06-20T15:03:41.126Z | 2026-04-28T16:13:18.975Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2021-avi-491 | Multiples vulnérabilités dans Zimbra | 2021-06-29T00:00:00.000000 | 2021-06-29T00:00:00.000000 |
| certfr-2021-avi-490 | Multiples vulnérabilités dans IBM Spectrum Protect | 2021-06-29T00:00:00.000000 | 2021-06-29T00:00:00.000000 |
| certfr-2021-avi-489 | Multiples vulnérabilités dans IBM Spectrum Protect | 2021-06-28T00:00:00.000000 | 2021-06-28T00:00:00.000000 |
| certfr-2021-avi-488 | Multiples vulnérabilités dans Microsoft Edge | 2021-06-25T00:00:00.000000 | 2021-06-25T00:00:00.000000 |
| certfr-2021-avi-487 | Vulnérabilité dans Qnap QTS | 2021-06-25T00:00:00.000000 | 2021-06-25T00:00:00.000000 |
| certfr-2021-avi-486 | Multiples vulnérabilités dans IBM Db2 | 2021-06-24T00:00:00.000000 | 2021-06-24T00:00:00.000000 |
| certfr-2021-avi-483 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2021-06-24T00:00:00.000000 | 2021-06-24T00:00:00.000000 |
| certfr-2021-avi-482 | Multiples vulnérabilités dans le noyau Linux de Debian LTS | 2021-06-24T00:00:00.000000 | 2021-06-24T00:00:00.000000 |
| certfr-2021-avi-481 | Vulnérabilité dans Palo Alto Networks Cortex XSOAR | 2021-06-23T00:00:00.000000 | 2021-06-23T00:00:00.000000 |
| certfr-2021-avi-480 | Vulnérabilité dans SonicWall SonicOS | 2021-06-23T00:00:00.000000 | 2021-06-23T00:00:00.000000 |
| certfr-2021-avi-479 | Multiples vulnérabilités dans les produits VMware | 2021-06-23T00:00:00.000000 | 2021-06-23T00:00:00.000000 |
| certfr-2021-avi-478 | Multiples vulnérabilités dans les produits Symantec | 2021-06-22T00:00:00.000000 | 2021-06-22T00:00:00.000000 |
| certfr-2021-avi-477 | Multiples vulnérabilités dans Google Chrome OS | 2021-06-21T00:00:00.000000 | 2021-06-21T00:00:00.000000 |
| certfr-2021-avi-476 | Multiples vulnérabilités dans Microsoft Edge | 2021-06-21T00:00:00.000000 | 2021-06-21T00:00:00.000000 |
| certfr-2021-avi-475 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2021-06-21T00:00:00.000000 | 2021-06-21T00:00:00.000000 |
| certfr-2021-avi-384 | [MaJ] Vulnérabilité dans Pulse Connect Secure | 2021-05-17T00:00:00.000000 | 2021-06-21T00:00:00.000000 |
| certfr-2021-avi-474 | Multiples vulnérabilités dans les produits IBM | 2021-06-18T00:00:00.000000 | 2021-06-18T00:00:00.000000 |
| certfr-2021-avi-472 | Vulnérabilité dans VMware Tools | 2021-06-18T00:00:00.000000 | 2021-06-18T00:00:00.000000 |
| certfr-2021-avi-471 | Multiples vulnérabilités dans les produits IBM | 2021-06-17T00:00:00.000000 | 2021-06-17T00:00:00.000000 |
| certfr-2021-avi-470 | Multiples vulnérabilités dans les produits Cisco | 2021-06-17T00:00:00.000000 | 2021-06-17T00:00:00.000000 |
| certfr-2021-avi-469 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2021-06-17T00:00:00.000000 | 2021-06-17T00:00:00.000000 |
| certfr-2021-avi-468 | Vulnérabilité dans Mozilla Firefox | 2021-06-16T00:00:00.000000 | 2021-06-16T00:00:00.000000 |
| certfr-2021-avi-467 | Multiples vulnérabilités dans les produits IBM | 2021-06-16T00:00:00.000000 | 2021-06-16T00:00:00.000000 |
| certfr-2021-avi-466 | Multiples vulnérabilités dans les produits Tenable | 2021-06-16T00:00:00.000000 | 2021-06-16T00:00:00.000000 |
| certfr-2021-avi-465 | Vulnérabilité dans les produits Qnap | 2021-06-16T00:00:00.000000 | 2021-06-16T00:00:00.000000 |
| certfr-2021-avi-464 | Vulnérabilité dans Trend Micro InterScan Web Security Virtual Appliance | 2021-06-16T00:00:00.000000 | 2021-06-16T00:00:00.000000 |
| certfr-2021-avi-463 | Vulnérabilité dans les produits SonicWall | 2021-06-15T00:00:00.000000 | 2021-06-15T00:00:00.000000 |
| certfr-2021-avi-462 | Multiples vulnérabilités dans Apple iOS | 2021-06-15T00:00:00.000000 | 2021-06-15T00:00:00.000000 |
| certfr-2021-avi-350 | Multiples vulnérabilités dans les produits Cisco | 2021-05-06T00:00:00.000000 | 2021-06-15T00:00:00.000000 |
| certfr-2021-avi-461 | Multiples vulnérabilités dans Microsoft Edge | 2021-06-14T00:00:00.000000 | 2021-06-14T00:00:00.000000 |